{"id":10718,"date":"2024-10-03T13:57:44","date_gmt":"2024-10-03T12:57:44","guid":{"rendered":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/?page_id=10718"},"modified":"2024-12-16T11:01:09","modified_gmt":"2024-12-16T11:01:09","slug":"interworking-security","status":"publish","type":"page","link":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/cybersecurity-knowledge-base\/interworking-security\/","title":{"rendered":"Interworking Security"},"content":{"rendered":"\n<div class=\"wp-block-gsma-header-group header-group_block gsma-load-hidden\">\n<div class=\"wp-block-group header-group_container gsma-load-hidden\"><div class=\"wp-block-group__inner-container is-layout-flow wp-block-group-is-layout-flow\">\n<h1 class=\"wp-block-heading header-group_title\" id=\"h-interworking-security\">Interworking Security<\/h1>\n\n\n\n<h3 class=\"wp-block-heading header-group_sub-title\" id=\"h-documents-for-interworking-security\">Documents for interworking Security<\/h3>\n<\/div><\/div>\n<\/div>\n\n\n\n<p>Interworking security is increasingly critical as networks become more interconnected. Collaboration between mobile network partners helps secure communication channels and prevent breaches. The GSMA offers key documentation to assist operators in mitigating risks associated with protocols such as SS7, DIAMETER, SIGTRAN, and IPX networks. These resources cover types of SMS and signalling fraud, SIM box bypass methods, and how to secure communication protocols.<\/p>\n\n\n\n<p>For mobile operators, interworking security is essential for maintaining a seamless and secure global communication system. By applying best practices from these documents, operators can establish effective firewalls, monitor traffic, and secure signalling layers. This page also provides resources on global title leasing and key management for 5G and LTE interconnections. Access to this knowledge helps operators detect vulnerabilities early and work closely with partners to maintain strong network security.<\/p>\n\n\n\n<style>\n    table {\n        width: 100%;\n        border-collapse: collapse;\n    }\n    th {\n        background-color: #dc002b; \/* Custom red color *\/\n        color: white;\n        padding: 8px;\n        font-weight: bold; \/* Make column headers bold *\/\n    }\n    td {\n        padding: 8px;\n        text-align: left;\n    }\n    tr:nth-child(odd) {\n        background-color: white; \/* White for odd rows *\/\n    }\n    tr:nth-child(even) {\n        background-color: #f1f1f0; \/* Light grey for even rows *\/\n    }\n    img.download-icon {\n        width: 16px;\n        height: 16px;\n        vertical-align: middle;\n    }\n<\/style>\n\n<table>\n<head>\n    <tr>\n        <th>Document<\/th>\n        <th>Description<\/th>\n        <th>Access<\/th>\n    <\/tr>\n<\/head>\n<body>\n    <tr>\n        <td>Use of SIM Boxes to Bypass Interconnect Communications (FS.01)<\/td>\n        <td>This document defines various types of SIM box bypass and their impact on traffic flows. It also outlines the mechanisms used to detect SIM boxes.<\/td>\n        <td><a href=\"https:\/\/www.gsma.com\/get-involved\/gsma-membership\/make-a-difference\/member-gateway\/\" target=\"_blank\" rel=\"noopener\">Members only<\/a><\/td>\n    <\/tr>\n    <tr>\n        <td>SMS Fraud (FF.09)<\/td>\n        <td>This document introduces different types of SMS. It illustrates how normal SMS traffic flows through the network and explains how fraud scenarios arise.<\/td>\n        <td><a href=\"https:\/\/www.gsma.com\/get-involved\/gsma-membership\/make-a-difference\/member-gateway\/\" target=\"_blank\" rel=\"noopener\">Members only<\/a><\/td>\n    <\/tr>\n<tr>\n        <td>A2P SMS Bypass and Fraud &#8211; Methods, Detection and Mitigation (FS.12)<\/td>\n        <td>This document describes the risks associated with application-to-person SMS bypass, SMS artificial inflation of traffic and unauthorised HLR lookups. It also provides mitigation recommendations.<\/td>\n        <td><a href=\"https:\/\/www.gsma.com\/get-involved\/gsma-membership\/make-a-difference\/member-gateway\/\" target=\"_blank\" rel=\"noopener\">Members only<\/a><\/td>\n    <\/tr>\n    <tr>\n        <td>SMS Firewall Best Practices and Policies (SG.22)<\/td>\n        <td>This guide offers high-level guidelines to help operators implement and manage SMS firewall policies. It also suggests corrective actions when necessary.<\/td>\n        <td><a href=\"https:\/\/www.gsma.com\/get-involved\/gsma-membership\/make-a-difference\/member-gateway\/\" target=\"_blank\" rel=\"noopener\">Members only<\/a><\/td>\n    <\/tr>\n    <tr>\n        <td>Binary SMS Filtering Guidelines (FS.42)<\/td>\n        <td>This document describes exploitations of binary SMS. It outlines where controls can be applied across network control points for each binary SMS type.<\/td>\n        <td><a href=\"https:\/\/www.gsma.com\/get-involved\/gsma-membership\/make-a-difference\/member-gateway\/\" target=\"_blank\" rel=\"noopener\">Members only<\/a><\/td>\n    <\/tr>\n    <tr>\n        <td>SS7 and SIGTRAN Network Security (FS.07)<\/td>\n        <td>This document analyses SS7 and SIGTRAN stack layer security. It identifies threats, describes attack methods, and proposes best practice countermeasures.<\/td>\n        <td><a href=\"https:\/\/www.gsma.com\/get-involved\/gsma-membership\/make-a-difference\/member-gateway\/\" target=\"_blank\" rel=\"noopener\">Members only<\/a><\/td>\n    <\/tr>\n    <tr>\n        <td>SS7 Interconnect Security Monitoring and Firewall Guidelines (FS.11)<\/td>\n        <td>This guide helps mobile operators monitor SS7 traffic and set firewall rules. It also supports establishing data-sharing capabilities to improve security.<\/td>\n        <td><a href=\"https:\/\/www.gsma.com\/get-involved\/gsma-membership\/make-a-difference\/member-gateway\/\" target=\"_blank\" rel=\"noopener\">Members only<\/a><\/td>\n    <\/tr>\n    <tr>\n        <td>\n            <a href=\"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/gsma_resources\/fs-52-global-title-leasing-code-of-conduct\/\" target=\"_blank\" rel=\"noopener\">\n                Global Title Leasing Code of Conduct (FS.52)\n            <\/a>\n        <\/td>\n        <td>This document addresses the leasing of global titles (GTs) within SS7 networks. It explains GT usage motivations and introduces a code of conduct to prevent abuse.<\/td>\n        <td>\n            Public \n            <a href=\"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/gsma_resources\/fs-52-global-title-leasing-code-of-conduct\/\" target=\"_blank\" rel=\"noopener\">\n                <img decoding=\"async\" class=\"download-icon\" src=\"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-content\/uploads\/2024\/09\/GSMA-red-download-icon_100x100_02.09.24.png\" alt=\"Download icon\">\n            <\/a>\n        <\/td>\n    <\/tr>\n    <tr>\n        <td>Diameter Interconnect Security (FS.19)<\/td>\n        <td>This guide outlines potential diameter-based attacks on mobile networks and customers. It also offers countermeasures to enhance LTE and 5G interconnection security.<\/td>\n        <td><a href=\"https:\/\/www.gsma.com\/get-involved\/gsma-membership\/make-a-difference\/member-gateway\/\" target=\"_blank\" rel=\"noopener\">Members only<\/a><\/td>\n    <\/tr>\n    <tr>\n        <td>GPRS Tunneling Protocol (GTP) Security (FS.20)<\/td>\n        <td>This document describes attacks on the mobile core network performed through the general packet radio service (GPRS) exchange (GRX), the internet protocol exchange (IPX) network or the internet. It also addresses mitigation strategies and countermeasures.<\/td>\n        <td><a href=\"https:\/\/www.gsma.com\/get-involved\/gsma-membership\/make-a-difference\/member-gateway\/\" target=\"_blank\" rel=\"noopener\">Members only<\/a><\/td>\n    <\/tr>\n    <tr>\n        <td>GTP-U (FS.37)<\/td>\n        <td>This document provides recommendations for mobile network operators to detect and prevent attacks using GPRS tunnelling protocol user (GTP-U) plane data.<\/td>\n        <td><a href=\"https:\/\/www.gsma.com\/get-involved\/gsma-membership\/make-a-difference\/member-gateway\/\" target=\"_blank\" rel=\"noopener\">Members only<\/a><\/td>\n    <\/tr>\n    <tr>\n        <td>5G Interconnect Security (FS.36)<\/td>\n        <td>This guide outlines potential 5G interconnect attacks on mobile networks and customers. It also provides countermeasures to address threats and risks related to 5G interconnection security.<\/td>\n        <td><a href=\"https:\/\/www.gsma.com\/get-involved\/gsma-membership\/make-a-difference\/member-gateway\/\" target=\"_blank\" rel=\"noopener\">Members only<\/a><\/td>\n    <\/tr>\n    <tr>\n        <td>Interconnect Signalling Security Recommendations (FS.21)<\/td>\n        <td>This document introduces interconnect signalling security with a risk-based approach. It also includes technical recommendations on packet categorisation, protocol correlation, firewall implementation.<\/td>\n        <td><a href=\"https:\/\/www.gsma.com\/get-involved\/gsma-membership\/make-a-difference\/member-gateway\/\" target=\"_blank\" rel=\"noopener\">Members only<\/a><\/td>\n    <\/tr>\n    <tr>\n        <td>\n            <a href=\"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/gsma_resources\/fs-26-guidelines-for-independent-remote-interconnect-security-testing\/\" target=\"_blank\" rel=\"noopener\">\n                Interconnect Testing (FS.26)\n            <\/a>\n        <\/td>\n        <td>This document outlines the security roles and responsibilities of testers and signalling interconnect partners. It is relevant when performing remote interconnect signalling security testing.<\/td>\n        <td>\n            Public \n            <a href=\"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/gsma_resources\/fs-26-guidelines-for-independent-remote-interconnect-security-testing\/\" target=\"_blank\" rel=\"noopener\">\n                <img decoding=\"async\" class=\"download-icon\" src=\"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-content\/uploads\/2024\/09\/GSMA-red-download-icon_100x100_02.09.24.png\" alt=\"Download icon\">\n            <\/a>\n        <\/td>\n    <\/tr>\n    <tr>\n        <td>\n            <a href=\"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/gsma_resources\/gsma-key-management-version-7-0\/\" target=\"_blank\" rel=\"noopener\">\n                Key Management (FS.34)\n            <\/a>\n        <\/td>\n        <td>This document details key management processes, including the exchange of certificates and key materials, between interconnect parties to secure signalling communications.<\/td>\n        <td>\n            Public \n            <a href=\"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/gsma_resources\/gsma-key-management-version-7-0\/\" target=\"_blank\" rel=\"noopener\">\n                <img decoding=\"async\" class=\"download-icon\" src=\"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-content\/uploads\/2024\/09\/GSMA-red-download-icon_100x100_02.09.24.png\" alt=\"Download icon\">\n            <\/a>\n        <\/td>\n    <\/tr>\n    <tr>\n        <td>SIP (FS.38)<\/td>\n        <td>This guide outlines potential SIP-based security, privacy, and fraud attacks on fixed, mobile, and converged networks. It also describes countermeasures to mitigate these risks.\n<\/td>\n        <td><a href=\"https:\/\/www.gsma.com\/get-involved\/gsma-membership\/make-a-difference\/member-gateway\/\" target=\"_blank\" rel=\"noopener\">Members only<\/a><\/td>\n    <\/tr>\n    <tr>\n        <td>RCS Fraud and Security Assessment (FS.41)    \n        <\/td>\n        <td>This document provides an overview of the fraud and security risks related to the implementation and deployment of RCS. It also provides guidance on how to mitigate those risks.<\/td>\n<td><a href=\"https:\/\/www.gsma.com\/get-involved\/gsma-membership\/make-a-difference\/member-gateway\/\" target=\"_blank\" rel=\"noopener\">Members only<\/a><\/td>\n    <\/tr>\n    <tr>\n        <td>Flash Calls Fraud and Security Assessment (FS.66)<\/td>\n        <td>This document describes flash and voice OTP TTS calling fraud and security risks to a range of stakeholders.\n<\/td>\n        <td><a href=\"https:\/\/www.gsma.com\/get-involved\/gsma-membership\/make-a-difference\/member-gateway\/\" target=\"_blank\" rel=\"noopener\">Members only<\/a><\/td>\n    <\/tr>\n<\/body>\n<\/table>\n\n\n\n<p><em>Please note, resources marked &#8216;Members only&#8217; can only be accessed by GSMA members<\/em><\/p>\n\n\n\n<p><\/p>\n\n\n\n<div class=\"wp-block-buttons is-layout-flex wp-block-buttons-is-layout-flex\">\n<div class=\"wp-block-button\"><a class=\"wp-block-button__link wp-element-button\" href=\"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/cybersecurity-knowledge-base\/\">Back to Cybersecurity Knowledge base<\/a><\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>Interworking security is increasingly critical as networks become more interconnected. Collaboration between mobile network partners helps secure communication channels and prevent breaches. The GSMA offers key documentation to assist operators in mitigating risks associated with protocols such as SS7, DIAMETER, SIGTRAN, and IPX networks. These resources cover types of SMS and signalling fraud, SIM box [&hellip;]<\/p>\n","protected":false},"author":49,"featured_media":8255,"parent":9965,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_oasis_is_in_workflow":0,"_oasis_original":0,"_oasis_task_priority":"","footnotes":""},"tags":[],"class_list":["post-10718","page","type-page","status-publish","has-post-thumbnail","hentry"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v24.3 (Yoast SEO v24.3) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Interworking Security - GSMA Security<\/title>\n<meta name=\"description\" content=\"Interworking security is increasingly critical as networks and systems become more interconnected.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/cybersecurity-knowledge-base\/interworking-security\/\" \/>\n<meta property=\"og:locale\" content=\"en_GB\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Interworking Security - GSMA Security\" \/>\n<meta property=\"og:description\" content=\"Cybersecurity for mobile network partners is critical in our interconnected world.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/cybersecurity-knowledge-base\/interworking-security\/\" \/>\n<meta property=\"og:site_name\" content=\"Security\" \/>\n<meta property=\"article:modified_time\" content=\"2024-12-16T11:01:09+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-content\/uploads\/2024\/05\/KB_616x450.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"616\" \/>\n\t<meta property=\"og:image:height\" content=\"450\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:title\" content=\"Interworking Security - GSMA Security\" \/>\n<meta name=\"twitter:description\" content=\"Cybersecurity for mobile network partners is increasingly critical as networks and systems become more interconnected.\" \/>\n<meta name=\"twitter:label1\" content=\"Estimated reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"4 minutes\" \/>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Interworking Security - GSMA Security","description":"Interworking security is increasingly critical as networks and systems become more interconnected.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/cybersecurity-knowledge-base\/interworking-security\/","og_locale":"en_GB","og_type":"article","og_title":"Interworking Security - GSMA Security","og_description":"Cybersecurity for mobile network partners is critical in our interconnected world.","og_url":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/cybersecurity-knowledge-base\/interworking-security\/","og_site_name":"Security","article_modified_time":"2024-12-16T11:01:09+00:00","og_image":[{"width":616,"height":450,"url":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-content\/uploads\/2024\/05\/KB_616x450.jpg","type":"image\/jpeg"}],"twitter_card":"summary_large_image","twitter_title":"Interworking Security - GSMA Security","twitter_description":"Cybersecurity for mobile network partners is increasingly critical as networks and systems become more interconnected.","twitter_misc":{"Estimated reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/cybersecurity-knowledge-base\/interworking-security\/","url":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/cybersecurity-knowledge-base\/interworking-security\/","name":"Interworking Security - GSMA Security","isPartOf":{"@id":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/cybersecurity-knowledge-base\/interworking-security\/#primaryimage"},"image":{"@id":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/cybersecurity-knowledge-base\/interworking-security\/#primaryimage"},"thumbnailUrl":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-content\/uploads\/2024\/05\/KB_616x450.jpg","datePublished":"2024-10-03T12:57:44+00:00","dateModified":"2024-12-16T11:01:09+00:00","description":"Interworking security is increasingly critical as networks and systems become more interconnected.","breadcrumb":{"@id":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/cybersecurity-knowledge-base\/interworking-security\/#breadcrumb"},"inLanguage":"en-GB","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/cybersecurity-knowledge-base\/interworking-security\/"]}]},{"@type":"ImageObject","inLanguage":"en-GB","@id":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/cybersecurity-knowledge-base\/interworking-security\/#primaryimage","url":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-content\/uploads\/2024\/05\/KB_616x450.jpg","contentUrl":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-content\/uploads\/2024\/05\/KB_616x450.jpg","width":616,"height":450,"caption":"cybersecurity Knowledge Base"},{"@type":"BreadcrumbList","@id":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/cybersecurity-knowledge-base\/interworking-security\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Cybersecurity Knowledge Base","item":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/cybersecurity-knowledge-base\/"},{"@type":"ListItem","position":2,"name":"Interworking Security"}]},{"@type":"WebSite","@id":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/#website","url":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/","name":"Security","description":"GSMA Security","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-GB"}]}},"_links":{"self":[{"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/pages\/10718","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/users\/49"}],"replies":[{"embeddable":true,"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/comments?post=10718"}],"version-history":[{"count":18,"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/pages\/10718\/revisions"}],"predecessor-version":[{"id":11401,"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/pages\/10718\/revisions\/11401"}],"up":[{"embeddable":true,"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/pages\/9965"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/media\/8255"}],"wp:attachment":[{"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/media?parent=10718"}],"wp:term":[{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.gsma.com\/solutions-and-impact\/technologies\/security\/wp-json\/wp\/v2\/tags?post=10718"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}